The util-linux package contains a large variety of low-level systemutilities that are necessary for a Linux system to function.

A flaw was discovered in the way that the mount and umount utilitiesused the setuid and setgid functions, which could lead to privileges beingdropped improperly. A local user could use this flaw to run mount helperapplications such as, mount.nfs, with additional privileges (CVE-2007-5191).

Users are advised to update to these erratum packages which contain abackported patch to correct this issue.

4. Solution:

Before applying this update, make sure that all previously-releasederrata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available athttp://kbase.redhat.com/faq/FAQ_58_10188